It can check the request values of $_GET, $_POST, and $_FILES to determine if they contain malicious data.

The class can detect potential viruses that encode or compress code to obfuscate it, may execute PHP or JavaScript code in strings, attempts to access restricted directories or injection of harmful values in SQL queries.

The detection of potential security threats triggers exceptions.

The class can also escape input values for use as literal values in SQL queries or output in HTML pages.